v2.11.1

What's Changed

• Express/Connect mime break due to dependencies
• Release v2.11.1 by @exsilium in #451

Full Changelog: v2.11.0...v2.11.1

v2.11.0

Node.JS v14-v18 deprecation. Updated dependencies.

What's Changed

• Bump @xmldom/xmldom from 0.8.8 to 0.8.9 by @dependabot[bot] in #354
• Bump xpath from 0.0.32 to 0.0.33 by @dependabot[bot] in #356
• Bump @xmldom/xmldom from 0.8.9 to 0.8.10 by @dependabot[bot] in #357
• Bump engine.io-client from 6.5.1 to 6.5.2 by @dependabot[bot] in #358
• Bump engine.io from 6.5.1 to 6.5.2 by @dependabot[bot] in #359
• Bump typescript from 5.1.6 to 5.2.2 by @dependabot[bot] in #360
• Bump xterm-addon-fit from 0.7.0 to 0.8.0 by @dependabot[bot] in #361
• Bump rimraf from 5.0.1 to 5.0.5 by @dependabot[bot] in #364
• Bump engine.io from 6.5.2 to 6.5.3 by @dependabot[bot] in #365
• Bump xterm from 5.2.1 to 5.3.0 by @dependabot[bot] in #362
• Bump async from 3.2.4 to 3.2.5 by @dependabot[bot] in #366
• Bump engine.io from 6.5.3 to 6.5.4 by @dependabot[bot] in #368
• Bump engine.io-client from 6.5.2 to 6.5.3 by @dependabot[bot] in #367
• Bump typescript from 5.2.2 to 5.3.2 by @dependabot[bot] in #369
• Bump passport from 0.6.0 to 0.7.0 by @dependabot[bot] in #370
• Bump @pylonide/architect-build from 0.1.4 to 0.2.0 by @dependabot[bot] in #371
• Bump @pylonide/jsdav from 0.9.0 to 1.0.0 by @dependabot[bot] in #372
• Bump @pylonide/dryice from 0.5.4 to 0.6.0 by @dependabot[bot] in #373
• Bump @pylonide/treehugger from 0.1.0 to 0.2.0 by @dependabot[bot] in #377
• Bump typescript from 5.3.2 to 5.3.3 by @dependabot[bot] in #378
• Bump @pylonide/vfs-nodefs-adapter from 0.6.0 to 0.7.0 by @dependabot[bot] in #374
• Bump @pylonide/smith from 0.1.24 to 0.2.0 by @dependabot[bot] in #375
• Bump @pylonide/v8debug from 0.1.3 to 0.2.0 by @dependabot[bot] in #376
• Bump xpath from 0.0.33 to 0.0.34 by @dependabot[bot] in #379
• Bump express-session from 1.17.3 to 1.18.0 by @dependabot[bot] in #380
• Bump rimraf from 5.0.5 to 5.0.7 by @dependabot[bot] in #387
• Bump qs from 6.11.2 to 6.13.0 by @dependabot[bot] in #400
• Bump serve-static from 1.15.0 to 1.16.2 by @dependabot[bot] in #408
• Bump typescript from 5.3.3 to 5.6.2 by @dependabot[bot] in #406
• Bump body-parser from 1.20.2 to 1.20.3 by @dependabot[bot] in #405
• Bump async from 3.2.5 to 3.2.6 by @dependabot[bot] in #401
• Bump @xmldom/xmldom from 0.8.10 to 0.9.2 by @dependabot[bot] in #404
• Bump rimraf from 5.0.7 to 6.0.1 by @dependabot[bot] in #398
• Bump cookie-parser from 1.4.6 to 1.4.7 by @dependabot[bot] in #413
• Bump express-session from 1.18.0 to 1.18.1 by @dependabot[bot] in #414
• Bump qs from 6.13.0 to 6.13.1 by @dependabot[bot] in #419
• Bump typescript from 5.6.2 to 5.7.2 by @dependabot[bot] in #420
• Bump @xmldom/xmldom from 0.9.2 to 0.9.6 by @dependabot[bot] in #421
• Bump engine.io from 6.5.4 to 6.6.2 by @dependabot[bot] in #415
• Bump engine.io-client from 6.5.3 to 6.6.2 by @dependabot[bot] in #417
• Bump typescript from 5.7.2 to 5.7.3 by @dependabot[bot] in #426
• Bump qs from 6.13.1 to 6.14.0 by @dependabot[bot] in #427
• Bump @xmldom/xmldom from 0.9.6 to 0.9.7 by @dependabot[bot] in #428
• Bump engine.io-client from 6.6.2 to 6.6.3 by @dependabot[bot] in #430
• Bump engine.io from 6.6.2 to 6.6.4 by @dependabot[bot] in #431
• Bump @xmldom/xmldom from 0.9.7 to 0.9.8 by @dependabot[bot] in #432
• Bump typescript from 5.7.3 to 5.8.2 by @dependabot[bot] in #433
• Bump typescript from 5.8.2 to 5.8.3 by @dependabot[bot] in #436
• Bump body-parser from 1.20.3 to 2.2.0 by @dependabot[bot] in #434
• Bump serve-static from 1.16.2 to 2.2.0 by @dependabot[bot] in #435
• Bump @pylonide/architect-build from 0.2.0 to 0.3.0 by @dependabot[bot] in #438
• Bump @pylonide/dryice from 0.6.0 to 0.7.0 by @dependabot[bot] in #437
• Bump @pylonide/jsdav from 1.0.0 to 1.1.0 by @dependabot[bot] in #442
• Bump yargs from 17.7.2 to 18.0.0 by @dependabot[bot] in #439
• Bump serve-favicon from 2.5.0 to 2.5.1 by @dependabot[bot] in #440
• Bump @pylonide/smith from 0.2.0 to 0.3.0 by @dependabot[bot] in #443
• Bump @pylonide/treehugger from 0.2.0 to 0.3.0 by @dependabot[bot] in #444
• Bump @pylonide/v8debug from 0.2.0 to 0.3.0 by @dependabot[bot] in #445
• Bump @pylonide/vfs-architect from 0.6.0 to 0.7.0 by @dependabot[bot] in #446
• Bump @pylonide/vfs-nodefs-adapter from 0.7.0 to 0.8.0 by @dependabot[bot] in #447
• Bump express-session from 1.18.1 to 1.18.2 by @dependabot[bot] in #448
• Bump typescript from 5.8.3 to 5.9.2 by @dependabot[bot] in #449
• Release v2.11.0 by @exsilium in #450

Full Changelog: v2.10.0...v2.11.0

v2.10.0

• Overall dependency updates
• Ace upgrade to v1.23.2 #347
• Slow initial session creation fixed #350

What's Changed

• Bump typescript from 4.9.3 to 4.9.4 by @dependabot in #298
• Bump engine.io-client from 6.2.3 to 6.3.0 by @dependabot in #302
• Bump engine.io from 6.2.1 to 6.3.1 by @dependabot in #303
• Bump rimraf from 3.0.2 to 4.1.1 by @dependabot in #307
• Bump @pylonide/jsdav from 0.6.0 to 0.7.0 by @dependabot in #314
• Bump xterm from 5.0.0 to 5.1.0 by @dependabot in #299
• Bump xterm-addon-fit from 0.6.0 to 0.7.0 by @dependabot in #300
• Bump @pylonide/vfs-nodefs-adapter from 0.5.0 to 0.6.0 by @dependabot in #308
• Bump rimraf from 4.1.1 to 4.1.2 by @dependabot in #309
• Bump typescript from 4.9.4 to 4.9.5 by @dependabot in #310
• Bump engine.io-client from 6.3.0 to 6.4.0 by @dependabot in #312
• Bump engine.io from 6.3.1 to 6.4.0 by @dependabot in #313
• Bump @pylonide/vfs-architect from 0.4.0 to 0.5.0 by @dependabot in #315
• Bump engine.io from 6.4.0 to 6.4.1 by @dependabot in #317
• Bump body-parser from 1.20.1 to 1.20.2 by @dependabot in #318
• Bump yargs from 17.6.2 to 17.7.1 by @dependabot in #319
• Bump rimraf from 4.1.2 to 4.1.3 by @dependabot in #320
• Bump qs from 6.11.0 to 6.11.1 by @dependabot in #324
• Bump rimraf from 4.1.3 to 4.4.0 by @dependabot in #325
• Bump typescript from 4.9.5 to 5.0.2 by @dependabot in #326
• Bump rimraf from 4.4.0 to 4.4.1 by @dependabot in #327
• Bump @xmldom/xmldom from 0.8.6 to 0.8.7 by @dependabot in #329
• Bump typescript from 5.0.2 to 5.0.4 by @dependabot in #330
• Bump yargs from 17.7.1 to 17.7.2 by @dependabot in #332
• Bump qs from 6.11.1 to 6.11.2 by @dependabot in #334
• Bump rimraf from 4.4.1 to 5.0.1 by @dependabot in #335
• Bump @xmldom/xmldom from 0.8.7 to 0.8.8 by @dependabot in #336
• Bump xterm from 5.1.0 to 5.2.1 by @dependabot in #339
• Bump node-pty from 0.10.1 to 1.0.0 by @dependabot in #340
• Bump engine.io-client from 6.4.0 to 6.5.0 by @dependabot in #341
• Bump engine.io from 6.4.1 to 6.5.1 by @dependabot in #344
• Bump typescript from 5.0.4 to 5.1.5 by @dependabot in #343
• Bump typescript from 5.1.5 to 5.1.6 by @dependabot in #346
• Bump engine.io-client from 6.5.0 to 6.5.1 by @dependabot in #345
• Bump @pylonide/jsdav from 0.7.0 to 0.8.0 by @dependabot in #348
• Bump @pylonide/jsdav from 0.8.0 to 0.9.0 by @dependabot in #349
• v2.10.0 by @exsilium in #351

Full Changelog: v2.9.0...v2.10.0

v2.9.0

• Includes integration with ACE v1.13.1 #279
• Cutting out of maintenance Node.JS support, new minimum node requirement v14.21.1
• Addresses moderate vulnerability in Passport < v0.6.0 concerning Session Fixation (session regeneration when a users logs in or out)
  • Weakness: CWE-384
  • Vulnerability: CVE-2022-25896
• xterm.js v5.0.0 upgrade
• Other dependency updates

v2.8.0

• Remediates security vulnerabilities reported in 3rd party packages.
• Notable upgrades to: passport, engine.io, xterm, yargs, jsdav, vfs, ace, xmldom
• iOS: Preferences page is not scrollable #41

v2.7.0

Maintenance release

• Cutting the support for Node.js v10 #192
• Minimum node.js version set to v12.22.1
• Deprecate the use of optimist #157 #194
• Removal of nodeunit dependency #195
• New scoped packages instead of direct github linking
  • @pylonide/architect-build
  • @pylonide/smith
  • @pylonide/treehugger
  • @pylonide/v8debug
• Notable dependency upgrades:
  • Engine.io v5.1.1
  • xterm v4.13.0
• form-auth promoted to default authentication plugin

Pylon

v2.6.0

• APF usage deprecated #93
• Cutting the support of the following old Node.js versions #122:
  • v4, v5, v6, v7, v8, v9)
• Node.JS v10 required going forward
• Upgrade to ACE v1.4.12
• Notable dependency upgrades:
  • Engine.io v4.0.0
  • xterm v4.9.0
• New @pylonide scoped dependencies:
  • @pylonide/vfs-architect
  • @pylonide/vfs-nodefs-adapter

Pylon

v2.5.0

• Dark themed file browser, ui enhancements
• Further namespace changes to Pylon #48
• APF Merged into Pylon IDE as PPC #66
• Connect middleware gets redirect() support #67
• Support for Forms authentication #69
• Removal of apf-packager and apf dependencies #87
• cozy-jsdav-fork dependency changed to @pylonide/jsdav for enhanced security
• dryice dependency changed to @pylonide/dryice for enhanced security
• Pylon namespace changes
• Upgrade to ACE v1.4.5
• Dependency upgrades and security enhancements
• One of the last releases to remain compatible with End-of-Life Releases of Node.js:
  • v4
  • v5
  • v6
  • v7

Pylon

• Further namespace changes to Pylon
• appCache capability check #57
• Fix for startup directory creation #59
• Fix for memory leak in file uploads
• Improve cancellation of file uploads #61
• Support upload of large files (< 1.5GB) #63

Pylon - v2.3.1

🐛 Don't fail on install via npm #56